Browse Definitions :
Definition

ISO 14000 and 14001

ISO 14000 is a series of environmental management standards developed and published by the International Organization for Standardization ( ISO ) for organizations. The ISO 14000 standards provide a guideline or framework for organizations that need to systematize and improve their environmental management efforts. The ISO 14000 standards are not designed to aid the enforcement of environmental laws and do not regulate the environmental activities of organizations. Adherence to these standards is voluntary.

The ISO 14001 standard is the most important standard within the ISO 14000 series. ISO 14001 specifies the requirements of an environmental management system (EMS) for small to large organizations. An EMS is a systemic approach to handling environmental issues within an organization. The ISO 14001 standard is based on the Plan-Check-Do-Review-Improve cycle.

The Plan cycle deals with the beginning stages of an organization becoming ISO 14001-compliant. The Check cycle deals with checking and correcting errors. The Do cycle is the implementation and operation of the ISO 14001 standard within an organization. The Review cycle is a review of the entire process by the organization's top management. And the Improve cycle is a cycle that never ends as an organization continually finds ways to improve their EMS.

The entire process can take several months to several years depending on the size of the organization. If an organization is already ISO 9000-certified, the implementation of ISO 14001 does not take as long. When an organization is compliant, they can either register with a third-party registrar or self-declare their compliance. The ISO 14001 standard is the only ISO 14000 standard that allows an organization to be registered or "certified.

The Technical Committee (TC) behind ISO 14000 is TC 207.

This was last updated in September 2005

Continue Reading About ISO 14000 and 14001

SearchCompliance
  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

SearchSecurity
  • social engineering

    Social engineering is an attack vector that relies heavily on human interaction and often involves manipulating people into ...

  • distributed denial-of-service (DDoS) attack

    A distributed denial-of-service (DDoS) attack is one in which multiple compromised computer systems attack a target, such as a ...

  • password cracking

    Password cracking is the process of using an application program to identify an unknown or forgotten password to a computer or ...

SearchHealthIT
SearchDisasterRecovery
  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

SearchStorage
  • storage security

    Storage security is the group of parameters and settings that make storage resources available to authorized users and trusted ...

  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud data management

    Cloud data management is a way to manage data across cloud platforms, either with or instead of on-premises storage.

Close